CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/04/10 8:19 p.m.•3 views

CVE-2026-40191

Summary: CVE-2026-40191 affects ClearanceKit on macOS, where the Endpoint Security event handler prior to 5.0.4-beta-1f46165 only validated the source path of dual-path file operations against FAA rules and App Jail policies, ignoring the destination path. As a result, a local process could bypas...

Vulnrichment•added 2026/04/10 8:19 p.m.•0 views

CVE-2026-40191 ClearanceKit has a policy bypass via dual-path Endpoint Security events checking only source path

Cvelist•added 2026/04/10 8:19 p.m.•14 views

CVE-2026-40191 ClearanceKit has a policy bypass via dual-path Endpoint Security events checking only source path

6.8CVSS0.00017EPSS

ATTACKERKB•added 2026/04/10 8:19 p.m.•2 views

CVE-2026-40191

Exploits0References3Affected Software1

CNNVD•added 2026/04/10 12:0 a.m.•2 views

ClearanceKit 安全漏洞

ClearanceKit is a macOS file system access control tool developed by Craig J. Bass. Versions of ClearanceKit prior to 5.0.4-beta-1f46165 contained security vulnerabilities. These vulnerabilities stemmed from the endpoint security event handler only checking the source path for double-path...

Positive Technologies•added 2026/04/10 12:0 a.m.•3 views

Exploits0References3

PT-2026-32041

Name of the Vulnerable Software and Affected Versions ClearanceKit versions prior to 5.0.4-beta-1f46165 Description ClearanceKit monitors file system access on macOS and applies access policies per process. Before version 5.0.4-beta-1f46165, the Endpoint Security event handler only verified the...

RedhatCVE•added 2026/03/28 4:56 a.m.•2 views

Exploits0References5

CVE-2026-33735

MyTube is a self-hosted downloader and player for several video websites Prior to version 1.8.69, an authorization bypass in the /api/settings/import-database endpoint allows attackers with low-privilege credentials to upload and replace the application's SQLite database entirely, leading to a fu...

8.8CVSS6AI score0.0005EPSS

Exploits1References1

NVD•added 2026/03/26 8:16 p.m.•2 views

CVE-2026-33631

ClearanceKit intercepts file-system access events on macOS and enforces per-process access policies. In versions on the 4.1 branch and earlier, the opfilter Endpoint Security system extension enforced file access policy exclusively by intercepting ESEVENTTYPEAUTHOPEN events. Seven additional file...

8.7CVSS0.00018EPSS

CVE•added 2026/03/26 7:30 p.m.•2 views

CVE-2026-33631

CVE-2026-33631 affects ClearanceKit on macOS. In the 4.1 branch and earlier, the opfilter Endpoint Security system extension enforced file access policy only for ES_EVENT_TYPE_AUTH_OPEN; seven additional file operation events were not intercepted, allowing local processes to bypass FAA policy wit...

8.7CVSS5.8AI score0.00018EPSS

Exploits0References2Affected Software1

HackRead•added 2026/03/26 5:15 p.m.•4 views

Best AI Security Solutions for Enterprises in 2026

Enterprise AI security solutions in 2026, compare Check Point, Palo Alto, CrowdStrike, Fortinet, and Zscaler across cloud, endpoint, and network...

5.8AI score

Imperva Blog•added 2026/03/24 11:11 a.m.•3 views

API Security for AI Agents: Why Protection Has Never Been More Important.

For years, a lot of risky APIs survived simply because they were hard to find. They weren’t documented. Only a handful of engineers knew the endpoints. And if an attacker wanted to abuse them, they had to spend real time reverse‑engineering traffic and guessing how things worked. That “security b...

5.9AI score

Securelist•added 2026/03/18 11:0 a.m.•2 views

The SOC Files: Time to “Sapecar”. Unpacking a new Horabot campaign in Mexico

Introduction In this installment of our SOC Files series, we will walk you through a targeted campaign that our MDR team identified and hunted down a few months ago. It involves a threat known as Horabot , a bundle consisting of an infamous banking Trojan, an email spreader, and a notably complex...

6AI score

Vulnrichment•added 2026/03/17 8:20 p.m.•2 views

CVE-2026-2809 Endpoint DLP Driver DLL

Netskope was notified about a potential gap in its Endpoint DLP Module for Netskope Client on Windows systems. The successful exploitation of the gap can potentially allow a privileged user to trigger an integer overflow within the DLL Injector, leading to a Blue-Screen-of-Death BSOD. Successful...

6.7CVSS5.8AI score0.0002EPSS

Exploits0References1

Japan Vulnerability Notes•added 2026/03/04 1:40 a.m.•6 views

Multiple vulnerabilities in Trend Micro Endpoint security products for enterprises (February 2026)

Overview Trend Micro Incorporated has released security updates for Endpoint security products for enterprises. Trend Micro Incorporated reported these vulnerabilities to JPCERT/CC to notify users of its solution through JVN. Impact Remote code execution due to a directory traversal vulnerability...

9.8CVSS7.8AI score0.00566EPSS

Exploits0References10

CNNVD•added 2026/02/24 12:0 a.m.•4 views

Trellix Endpoint Security HX 安全漏洞

Trellix Endpoint Security HX is a endpoint detection and response software developed by the American company Trellix. There is a security vulnerability in Trellix Endpoint Security HX, which stems from a flaw in the fekern.sys driver file, potentially leading to privilege escalation...

7.8CVSS5.8AI score0.00027EPSS

Exploits0References1

ATTACKERKB•added 2026/02/18 2:53 p.m.•2 views

CVE-2025-71233

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Avoid creating sub-groups asynchronously The asynchronous creation of sub-groups by a delayed work could lead to a NULL pointer dereference when the driver directory is removed before the work completes. The crash...

5.1AI score0.00025EPSS

Exploits0References8Affected Software1

Debian CVE•added 2026/02/18 2:53 p.m.•3 views

CVE-2025-71233

5.5CVSS5.2AI score0.00025EPSS